pkg:maven/org.jenkins-ci.plugins/fortify
Type
maven
Namespace
org.jenkins-ci.plugins
Name
fortify
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/fortify package.
Moderate
5
Medium
4
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 19.1.29 |
CVE-2020-2107
|
 JENKINS:SECURITY-1565
|
`fortify` stored credentials in plain text | medium |
2020-01-29T00:00:00
(4 years ago) |
|
| Fixed | = 19.2.30 |
CVE-2020-2107
|
JENKINS:SECURITY-1565
|
`fortify` stored credentials in plain text | medium |
2020-01-29T00:00:00
(4 years ago) |
|
| Affected | <= 20.2.34 |
CVE-2022-25188
|
JENKINS:SECURITY-2214
|
Path traversal vulnerability in `fortify` | medium |
2022-02-15T00:00:00
(2 years ago) |
|
| Fixed | = 20.2.35 |
CVE-2022-25188
|
JENKINS:SECURITY-2214
|
Path traversal vulnerability in `fortify` | medium |
2022-02-15T00:00:00
(2 years ago) |
|
| Affected | <= 22.1.38 |
CVE-2023-4301
CVE-2023-4302 |
JENKINS:SECURITY-3115
|
CSRF vulnerability and missing permission checks in `fortify` allow capturing credentials | medium |
2023-08-16T00:00:00
(13 months ago) |
|
| Fixed | = 22.2.39 |
CVE-2023-4301
CVE-2023-4302 |
JENKINS:SECURITY-3115
|
CSRF vulnerability and missing permission checks in `fortify` allow capturing credentials | medium |
2023-08-16T00:00:00
(13 months ago) |
|
| Affected | <= 22.1.38 |
CVE-2023-4303
|
JENKINS:SECURITY-3140
|
HTML injection vulnerability in `fortify` | medium |
2023-08-16T00:00:00
(13 months ago) |
|
| Fixed | = 22.2.39 |
CVE-2023-4303
|
JENKINS:SECURITY-3140
|
HTML injection vulnerability in `fortify` | medium |
2023-08-16T00:00:00
(13 months ago) |
|
| Affected | <= 22.1.38 |
CVE-2023-4303
|
 MAVEN:GHSA-223M-PGCQ-F3XG
|
Jenkins Fortify Plugin HTML injection vulnerability | moderate |
2023-08-22T00:31:11
(13 months ago) |
|
| Fixed | = 22.2.39 |
CVE-2023-4303
|
MAVEN:GHSA-223M-PGCQ-F3XG
|
Jenkins Fortify Plugin HTML injection vulnerability | moderate |
2023-08-22T00:31:11
(13 months ago) |
|
| Affected | < 20.2.35 |
CVE-2022-25188
|
MAVEN:GHSA-23H5-8PH6-7RFC
|
Path traversal vulnerability in Jenkins Fortify Plugin | moderate |
2022-02-16T00:01:27
(2 years ago) |
|
| Fixed | = 20.2.35 |
CVE-2022-25188
|
MAVEN:GHSA-23H5-8PH6-7RFC
|
Path traversal vulnerability in Jenkins Fortify Plugin | moderate |
2022-02-16T00:01:27
(2 years ago) |
|
| Affected | <= 22.1.38 |
CVE-2023-4301
|
MAVEN:GHSA-3FJV-8R82-6XM9
|
Jenkins Fortify Plugin cross-site request forgery vulnerability | moderate |
2023-08-22T00:31:11
(13 months ago) |
|
| Fixed | = 22.2.39 |
CVE-2023-4301
|
MAVEN:GHSA-3FJV-8R82-6XM9
|
Jenkins Fortify Plugin cross-site request forgery vulnerability | moderate |
2023-08-22T00:31:11
(13 months ago) |
|
| Affected | <= 22.1.38 |
CVE-2023-4302
|
MAVEN:GHSA-4XMF-344Q-M4CC
|
Jenkins Fortify Plugin missing permission check | moderate |
2023-08-22T00:31:10
(13 months ago) |
|
| Fixed | = 22.2.39 |
CVE-2023-4302
|
MAVEN:GHSA-4XMF-344Q-M4CC
|
Jenkins Fortify Plugin missing permission check | moderate |
2023-08-22T00:31:10
(13 months ago) |
|
| Affected | <= 19.1.29 |
CVE-2020-2107
|
MAVEN:GHSA-XR37-PJFH-QWWC
|
Fortify Plugin stored credentials in plain text | moderate |
2022-05-24T17:07:41
(2 years ago) |
|
| Fixed | = 19.2.30 |
CVE-2020-2107
|
MAVEN:GHSA-XR37-PJFH-QWWC
|
Fortify Plugin stored credentials in plain text | moderate |
2022-05-24T17:07:41
(2 years ago) |